exploitDog

CVE-2020-28183

Опубликовано: 17 нояб. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Низкий

Описание

SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the username and password parameters to process.php.

Ссылки

https://github.com/sartlabs/0days/tree/main/WBS
Third Party Advisory
https://research-labs.net/search/exploits/water-billing-system-10-username-and-password-parameters-sql-injection
Broken Link
https://www.exploit-db.com/exploits/49032
Exploit
Third Party Advisory
VDB Entry
https://github.com/sartlabs/0days/tree/main/WBS
Third Party Advisory
https://research-labs.net/search/exploits/water-billing-system-10-username-and-password-parameters-sql-injection
Broken Link
https://www.exploit-db.com/exploits/49032
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:water_billing_system_project:water_billing_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01128

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-f547-35w9-xxjr

github

больше 3 лет назад

SQL injection vulnerability in SourceCodester Water Billing System 1.0 via the username and password parameters to process.php.

EPSS

Процентиль: 78%

0.01128

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-89